IDS mailing list archives

Previous By Date Next
Previous By Thread Next

Re: ICSA certified - better?

From: ph03n1x <ph03n1x () gmx net>
Date: Tue, 03 Aug 2004 22:48:37 +0200
Careful with ICSA. Afaik vendors can choose what part or feature they want to certify. So basically you can certify the Firewall part of your product but the rest is not certified.What I want to tell you... it doesn't really say much about a product if it has one or two ICSA certificates. But it's also not a bad thing. But don't weight that too much. 

Skip Carter wrote:


Without mentioning any names, are IDP/FW appliances better if ICSA
certified?


Not necessarily, it really just means that the vendor spent the $$ to
go through the process.

On the other hand, the ICSA standard pretty much codifies best practices
so if the firewall that you are using isn't capable of doing the things
that the standard defines (and configured to actually do them), then
its probably not that effective.









--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from CORE
IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
--------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: